The mobile virtual disk driver

现在的位置: 首页 > 综合 > 正文

The mobile virtual disk driver

2012年04月03日 ⁄ 综合 ⁄ 共 4444字 ⁄ 字号小中大 ⁄ 评论关闭

I did not write the blog for a long time. These days, i use the google doc and note to record. I love them very much:) But there is a disadvantage in google doc, it does not support syntax highlight, so i think i have to write here. Fortunately, CSDN has support search in blog.

I have finished the virtual disk driver on the mobile recently. It can encrypt the data in devices automatically without user intervention, providing a user-transparent yet fully-enforceable security policy. I use the fat FS to implement the virtual disk, Before write every sector, encrypt data with aes, and decrypt before read. I

user password's MD5 to make aes key.

That code like this:

if (!(ReadNotWrite)) { RETAILMSG(1,(L"blockEncrypt/n")); //int blockEncrypt(cipherInstance *cipher, keyInstance *key, // BYTE *input, int inputLen, BYTE *outBuffer); //RETAILMSG(1,(L"1111blockEncrypt ---- Buffer = %x tmpBuffer = %x/n",Buffer, tmpBuffer)); /*if (*/blockEncrypt(&(DeviceContext->cipherInst), &(DeviceContext->nowKeyInst.keyInstEn), Buffer, BufferLength, tmpBuffer);// > 0) //{ status = ActualWriteFile( DeviceContext, &fileOffset, tmpBufferSize, tmpBuffer ); //} RETAILMSG(1,(L"blockEncrypt ---- Buffer = %x tmpBuffer = %x/n",Buffer, tmpBuffer)); } else { status = ActualReadFile( DeviceContext, &fileOffset, tmpBufferSize, tmpBuffer ); if (status == ERROR_SUCCESS) { //int blockDecrypt(cipherInstance *cipher, keyInstance *key, // BYTE *input, int inputLen, BYTE *outBuffer); blockDecrypt(&(DeviceContext->cipherInst), &(DeviceContext->nowKeyInst.keyInstDe), tmpBuffer, tmpBufferSize, Buffer); // RETAILMSG(1,(L"blockDecrypt ---- tmpBuffer = %x Buffer = %x/n",tmpBuffer, Buffer)); } }

MakeAesKey(devContext, &(devContext->nowKeyInst), devContext->mountdetail->UserPassword);

In anthentication, i use user password's SHA1 in register. like this:

HKEY hStorageKey = NULL; HKEY hProfileKey = NULL; std::basic_string<TCHAR> strValue; if (RegOpenKeyEx(HKEY_LOCAL_MACHINE, L"System//StorageManager//Profiles", 0, KEY_WRITE|KEY_READ, &hStorageKey) == ERROR_SUCCESS) { DWORD dw; if (RegCreateKeyEx(hStorageKey, L"SecTest", 0, REG_NONE, REG_OPTION_NON_VOLATILE, 0, 0, &hProfileKey, &dw) == ERROR_SUCCESS) { DWORD dwType=REG_NONE; DWORD dwCount=0; LONG lResult = RegQueryValueEx(hProfileKey, L"HEX", NULL, &dwType, NULL, &dwCount); if (lResult == ERROR_SUCCESS) { strValue.resize(dwCount); lResult = RegQueryValueEx(hProfileKey, L"HEX", NULL, &dwType, (LPBYTE)strValue.data(), &dwCount); } } if (hProfileKey != NULL) { RegCloseKey(hProfileKey); } } if (hStorageKey != NULL) { RegCloseKey(hStorageKey); } RETAILMSG(1,(L"strValue = %ls/n", strValue.c_str())); //////// std::basic_string<TCHAR> strReport; CSHA1 sha1; sha1.Update((UINT_8*)devContext->mountdetail->UserPassword, strlen(devContext->mountdetail->UserPassword)); sha1.Final(); sha1.ReportHashStl(strReport, CSHA1::REPORT_HEX_SHORT); RETAILMSG(1,(L"strReport = %ls/n", strReport.c_str())); strReport=strReport.substr(0,32); strValue=strValue.substr(0,32); if (strReport.compare(strValue)) { return 0; }

The most important is XXX_IOControl, we have to

implement our IOCTL_DISK_GETINFO, DISK_IOCTL_GETINFO, IOCTL_DISK_DEVICE_INFO,IOCTL_DISK_READ, DISK_IOCTL_READ, IOCTL_DISK_WRITE, DISK_IOCTL_WRITE, the sample like this:

switch(dwCode) { case DISK_IOCTL_INITIALIZED: RETAILMSG(1, (L"Init!/n")); break; case IOCTL_DISK_GETINFO: *((DISK_INFO*)pBufOut) = devContext->DiskGeometry; break; case DISK_IOCTL_GETINFO: *((DISK_INFO*)pBufIn) = devContext->DiskGeometry; break; case IOCTL_DISK_DEVICE_INFO: RETAILMSG(1, (L"get info!/n")); *((STORAGEDEVICEINFO*)pBufIn) = devContext->StorageDeviceInfo; break; case IOCTL_DISK_READ: case DISK_IOCTL_READ: bRet = IOCTL_Std_DiskReadWrite( devContext, TRUE, pBufIn, dwLenIn, &outputBufferUsed ); break; case IOCTL_DISK_WRITE: case DISK_IOCTL_WRITE: bRet = IOCTL_Std_DiskReadWrite( devContext, FALSE, pBufIn, dwLenIn, &outputBufferUsed ); break; case IOCTL_CHANGE_PASSWORD: { CHANGE_PASSWD* pwd = (CHANGE_PASSWD*)pBufIn; RETAILMSG(1, (L"pwd->OldPassword: ")); for (int i = 0; i < strlen(pwd->OldPassword); ++i) { RETAILMSG(1, (L"%c", pwd->OldPassword[i])); } RETAILMSG(1, (L"/n")); MakeAesKey(devContext, &(devContext->oldKeyInst), pwd->OldPassword); MakeAesKey(devContext, &(devContext->newKeyInst), pwd->NewPassword); devContext->nowKeyInst.keyInstDe = devContext->oldKeyInst.keyInstDe; devContext->nowKeyInst.keyInstEn = devContext->newKeyInst.keyInstEn; } break; case IOCTL_CHANGE_PASSWORD_FINI: { CHANGE_PASSWD* pwd = (CHANGE_PASSWD*)pBufIn; RETAILMSG(1, (L"pwd->NewPassword: ")); for (int i = 0; i < strlen(pwd->NewPassword); ++i) { RETAILMSG(1, (L"%c", pwd->NewPassword[i])); } RETAILMSG(1, (L"/n")); MakeAesKey(devContext, &(devContext->nowKeyInst), pwd->NewPassword); } break; default: break; }

Becareful

IOCTL_DISK_GETINFO and DISK_IOCTL_GETINFO are defferent!!

Next, i want implement my owner file system, So it can be more safely and efficiently！ FAT or EXT2？ i do'nt know.

【上篇】销售管理系统的UML分析与设计
【下篇】stopCope

作者: rial

该日志由 rial 于12年前发表在综合分类下，最后更新于 2012年04月03日.
转载请注明: The mobile virtual disk driver | 学步园 +复制链接

抱歉!评论已关闭.

学步园

The mobile virtual disk driver

作者: rial

书签

最新文章New

本站推荐

返回首页